Platform
Solutions
Pricing
Why Invicti
Resources Library
Get a demo
Home
/
Web Application Vulnerabilities
/ Known Vulnerabilities
Web Application Vulnerabilities
Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise
Acunetix Standard & Premium
Known Vulnerabilities
This page lists
13509 vulnerabilities
in this category.
Critical: 1465
High: 3387
Medium: 7907
Low: 748
Information: 2
Vulnerability Name
CVE
CWE
Severity
OpenSSL Resource Management Errors Vulnerability (CVE-2008-1678)
CVE-2008-1678
-
Medium
phpMyAdmin Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-3456)
CVE-2008-3456
CWE-59
Medium
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3295)
CVE-2008-3295
CWE-707
Medium
Claroline Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3315)
CVE-2008-3315
CWE-707
Medium
Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-3325)
CVE-2008-3325
CWE-352
Medium
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-3327)
CVE-2008-3327
CWE-200
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3334)
CVE-2008-3334
CWE-707
Medium
ATutor Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2008-3368)
CVE-2008-3368
CWE-94
Medium
Ruby Resource Management Errors Vulnerability (CVE-2008-3443)
CVE-2008-3443
-
Medium
Jboss EAP Configuration Vulnerability (CVE-2008-3519)
CVE-2008-3519
-
Medium
Claroline Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-3262)
CVE-2008-3262
CWE-352
Medium
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2008-3659)
CVE-2008-3659
CWE-119
Medium
PHP Improper Input Validation Vulnerability (CVE-2008-3660)
CVE-2008-3660
CWE-20
Medium
Drupal Other Vulnerability (CVE-2008-3661)
CVE-2008-3661
-
Medium
Dot CMS Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2008-3708)
CVE-2008-3708
CWE-22
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3740)
CVE-2008-3740
CWE-707
Medium
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-3742)
CVE-2008-3742
CWE-264
Medium
Drupal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-3743)
CVE-2008-3743
CWE-352
Medium
Apache Tomcat Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-3271)
CVE-2008-3271
CWE-264
Medium
Claroline Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-3261)
CVE-2008-3261
CWE-59
Medium
GlassFish Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-2751)
CVE-2008-2751
CWE-707
Medium
MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3069)
CVE-2008-3069
CWE-707
Medium
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-2771)
CVE-2008-2771
CWE-264
Medium
Perl Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-2827)
CVE-2008-2827
CWE-264
Medium
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2008-2829)
CVE-2008-2829
CWE-119
Medium
Family Connections Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-2901)
CVE-2008-2901
CWE-138
Medium
Apache Tomcat Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2008-2938)
CVE-2008-2938
CWE-22
Medium
Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-2939)
CVE-2008-2939
CWE-707
Medium
Trac URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2008-2951)
CVE-2008-2951
CWE-601
Medium
Python Integer Overflow or Wraparound Vulnerability (CVE-2008-3144)
CVE-2008-3144
CWE-190
Medium
Claroline Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3260)
CVE-2008-3260
CWE-707
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3218)
CVE-2008-3218
CWE-707
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3219)
CVE-2008-3219
CWE-707
Medium
Drupal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-3220)
CVE-2008-3220
CWE-352
Medium
Drupal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-3221)
CVE-2008-3221
CWE-352
Medium
Drupal Session Fixation Vulnerability (CVE-2008-3222)
CVE-2008-3222
CWE-384
Medium
Joomla Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-3226)
CVE-2008-3226
CWE-264
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3233)
CVE-2008-3233
CWE-707
Medium
Python Integer Overflow or Wraparound Vulnerability (CVE-2008-1679)
CVE-2008-1679
CWE-190
Medium
OpenSSL NULL Pointer Dereference Vulnerability (CVE-2008-1672)
CVE-2008-1672
CWE-476
Medium
Oracle Database Server CVE-2007-5515 Vulnerability (CVE-2007-5515)
CVE-2007-5515
-
Medium
PostgreSQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-6600)
CVE-2007-6600
CWE-264
Medium
MySQL Other Vulnerability (CVE-2007-6304)
CVE-2007-6304
-
Medium
WordPress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2007-6318)
CVE-2007-6318
CWE-138
Medium
TYPO3 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2007-6381)
CVE-2007-6381
CWE-138
Medium
Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-6388)
CVE-2007-6388
CWE-707
Medium
Apache HTTP Server Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2007-6420)
CVE-2007-6420
CWE-352
Medium
Apache HTTP Server Resource Management Errors Vulnerability (CVE-2007-6422)
CVE-2007-6422
-
Medium
Apache HTTP Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2007-6514)
CVE-2007-6514
CWE-200
Medium
Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-6617)
CVE-2007-6617
CWE-707
Medium
Oracle Database Server Credentials Management Errors Vulnerability (CVE-2007-6260)
CVE-2007-6260
-
Medium
Atlassian Jira Other Vulnerability (CVE-2007-6618)
CVE-2007-6618
-
Medium
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-6677)
CVE-2007-6677
CWE-707
Medium
Apache HTTP Server Resource Management Errors Vulnerability (CVE-2007-6750)
CVE-2007-6750
-
Medium
Drupal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2007-6752)
CVE-2007-6752
CWE-352
Medium
Apache Tomcat Other Vulnerability (CVE-2008-0002)
CVE-2008-0002
-
Medium
Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0005)
CVE-2008-0005
CWE-707
Medium
Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-0123)
CVE-2008-0123
CWE-707
Medium
Apache Tomcat Other Vulnerability (CVE-2007-6286)
CVE-2007-6286
-
Medium
Serendipity Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-6205)
CVE-2007-6205
CWE-707
Medium
Apache Tomcat Configuration Vulnerability (CVE-2008-0128)
CVE-2008-0128
-
Medium
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-5597)
CVE-2007-5597
CWE-264
Medium
LimeSurvey Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2007-5573)
CVE-2007-5573
CWE-94
Medium
Joomla Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-5577)
CVE-2007-5577
CWE-707
Medium
phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-5589)
CVE-2007-5589
CWE-707
Medium
Drupal Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2007-5593)
CVE-2007-5593
CWE-94
Medium
Drupal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2007-5594)
CVE-2007-5594
CWE-352
Medium
Drupal Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Response Splitting') Vulnerability (CVE-2007-5595)
CVE-2007-5595
CWE-113
Medium
Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-5596)
CVE-2007-5596
CWE-707
Medium
Ruby Improper Authentication Vulnerability (CVE-2007-5770)
CVE-2007-5770
CWE-287
Medium
Apache HTTP Server Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2007-6203)
CVE-2007-6203
CWE-707
Medium
PHP CVE-2007-5898 Vulnerability (CVE-2007-5898)
CVE-2007-5898
-
Medium
PHP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2007-5899)
CVE-2007-5899
CWE-200
Medium
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-5900)
CVE-2007-5900
CWE-264
Medium
MySQL Other Vulnerability (CVE-2007-5970)
CVE-2007-5970
-
Medium
«
1
...
139
140
141
...
181
»
